WSC and WSP application developers can use the Java OpenToken Agent API (included in this distribution) to write and read an OpenToken.
The API provide access to functionality for writing an OpenToken at the WSC to be exchanged for a SAML token, and for reading an OpenToken at the WSP that was issued from a SAML token.
The Agent API may be used in conjunction with the Java STS Client SDK for interacting with the PingFederate WS-Trust endpoints. You can download the Java Client SDK from the PingFederate server add-ons page. Examples in this section implement the SDK.
If you have already installed a previous version of the OpenToken Agent, we recommend removing the existing Agent JAR file and installing the current version to address potential security issues.